On Fri, Jul 08, 2011 at 01:57:29PM +0200, Khaled Blah wrote:
I use OpenLDAP in an authentication project and I would like to
correctly deal with fauly networks. I mean networks that have packet
losses and such.
You do not need to worry about that at the LDAP level, as TCP
deals with it at the transport level.
That is why I would like to know whether there is a function in
OpenLDAP which allows to check (and maybe sanitize) possibly corrupted
sockets associated with the LDAP handle?
If you are really concerned about corrupted data due to malicious causes
then you should use TLS. The combination of TCP, stream encryption,
and LDAP protocol checks should catch almost any corruption.
Andrew
--
-----------------------------------------------------------------------
| From Andrew Findlay, Skills 1st Ltd |
| Consultant in large-scale systems, networks, and directory services |
|
http://www.skills-1st.co.uk/ +44 1628 782565 |
-----------------------------------------------------------------------